2024-08-18_6e6242969fb39b3abc3b19557d858d47_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-18_6e6242969fb39b3abc3b19557d858d47_bkransomware
Size

733KB
MD5

6e6242969fb39b3abc3b19557d858d47
SHA1

6e1cb498048bca07fa449273fe670aa4d9272928
SHA256

18da46dcbceb04907f04083c38d30ccd006e2dd4f284a46d2937c3a97fca14d7
SHA512

50e6d47489195a449e256ed0273ee3b1e526b63419324347fb10756418538dc39b10c9591bd7b0213e14ba15144c2f4fc5cea811282da51e98c52d487f4ff59b
SSDEEP

12288:vietSdZ/GOu570R9rszH7OsRW3IPqoaxHz7:VmQ57U9rs/u3Zoadz7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-18_6e6242969fb39b3abc3b19557d858d47_bkransomware

Files

2024-08-18_6e6242969fb39b3abc3b19557d858d47_bkransomware
.exe windows:5 windows x86 arch:x86

2628bc503a8c86ab105944ae133441d1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetDevCaps
timeBeginPeriod
timeEndPeriod
timeGetTime

comctl32

PropertySheetA
ImageList_AddMasked
ord17
InitCommonControlsEx
ImageList_Create
ord6

kernel32

FindClose
lstrcmpiA
FindFirstFileA
FindNextFileA
GetProcAddress
LoadLibraryA
GetPrivateProfileSectionA
GetLastError
CreateDirectoryA
LocalFree
FormatMessageA
VirtualAlloc
VirtualProtect
TerminateThread
GetExitCodeThread
SuspendThread
ResumeThread
PulseEvent
ReleaseMutex
WaitForSingleObject
CreateEventA
DeleteFileA
QueryPerformanceCounter
GetFileSize
FreeLibrary
GetCurrentThread
SetThreadPriority
ExpandEnvironmentStringsA
GetFileInformationByHandle
FileTimeToLocalFileTime
SetStdHandle
OutputDebugStringW
LoadLibraryExW
LCMapStringW
CompareStringW
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
HeapSize
DeleteFileW
VirtualFree
GetConsoleCP
FlushFileBuffers
lstrlenA
ReadFile
GetConsoleMode
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
FindFirstFileExW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTimeZoneInformation
GetStartupInfoW
DeleteCriticalSection
GetFileType
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
WideCharToMultiByte
AreFileApisANSI
GetModuleHandleExW
ExitProcess
GetProcessHeap
MultiByteToWideChar
GetCurrentThreadId
SetLastError
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetCommandLineA
PeekNamedPipe
RtlUnwind
RaiseException
DecodePointer
EncodePointer
IsProcessorFeaturePresent
IsDebuggerPresent
HeapReAlloc
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
GetFullPathNameW
GetCurrentDirectoryW
CreateFileA
SetFilePointer
WriteFile
QueryPerformanceFrequency
CloseHandle
CreateMutexA
Sleep
ReadConsoleW
CreateThread
GetModuleFileNameA
ExitThread
SetFilePointerEx
CreateFileW
WriteConsoleW
SetEndOfFile
SetEnvironmentVariableA

user32

InsertMenuItemA
ModifyMenuA
CreateMenu
MsgWaitForMultipleObjects
PeekMessageA
GetWindowTextA
GetDlgItemInt
FillRect
InvalidateRect
DrawTextA
IsWindowVisible
IsWindow
LoadCursorA
SetRect
ShowCursor
AdjustWindowRectEx
ValidateRect
SetActiveWindow
SetMenuItemInfoA
GetMenuItemInfoA
RemoveMenu
InsertMenuA
EnableMenuItem
CheckMenuItem
DrawMenuBar
GetMenuState
SetMenu
GetMenu
TranslateAcceleratorA
LoadAcceleratorsA
MoveWindow
IsMenu
RegisterClassA
PostQuitMessage
IsDialogMessageA
LoadBitmapA
SetWindowLongA
GetWindowLongA
MapWindowPoints
GetCursorPos
GetWindowRect
GetClientRect
SetWindowTextA
SetForegroundWindow
TrackPopupMenu
DeleteMenu
GetSubMenu
DestroyMenu
LoadMenuA
GetSystemMetrics
IsWindowEnabled
EnableWindow
SetFocus
GetDlgItemTextA
SetDlgItemTextA
GetDlgItem
CreateDialogParamA
IsIconic
GetWindowPlacement
SetWindowPos
ShowWindow
DestroyWindow
CreateWindowExA
DefWindowProcA
PostMessageA
SendMessageA
GetMessagePos
DispatchMessageA
TranslateMessage
GetMessageA
MessageBoxA
SendDlgItemMessageA
EndDialog
DialogBoxParamA
LoadIconA

gdi32

SetBkMode
CreateSolidBrush
GetStockObject
DeleteObject
SetTextColor

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyA

shell32

DragFinish
DragAcceptFiles
ShellExecuteA
SHChangeNotify
SHGetPathFromIDListA
SHBrowseForFolderA
DragQueryFileA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 446KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 127KB - Virtual size: 840KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2628bc503a8c86ab105944ae133441d1

Headers

DLL Characteristics

File Characteristics

Imports

winmm

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 446KB - Virtual size: 446KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 127KB - Virtual size: 840KB

.rsrc Size: 65KB - Virtual size: 64KB

.reloc Size: 41KB - Virtual size: 40KB

.text
Size: 446KB - Virtual size: 446KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 127KB - Virtual size: 840KB

.rsrc
Size: 65KB - Virtual size: 64KB

.reloc
Size: 41KB - Virtual size: 40KB